π What's going on in the cyber world today? π¨ #CyberAlerts New Darcula Phishing Scam Targets Android and iPhone Worldwide Source: Harry Everett via netcraft Edge Browser Flaw Enables Silent Malicious Extensions Installation Source: Oleg Zaytsev via Guardio Labs Mispadu Banking Trojan Spreads Across Europe Source: Arnold Osipov via Morphisec Agenda Ransomware Hits VMware Servers Globally Source: Arianne Dela Cruz, Raymart Yambot, Raighen Sanchez, Darrel Tristan Virtusio via Trend Micro NVIDIA C...
Mar 28, 2024β’8 min
π What's trending in cybersecurity today? π¨ #CyberAlerts Keylogger Disguised as Bank Payment Notice in New Phishing Attack Source: Bernard Bautista via Trustwave Sketchy NuGet Package Linked to Industrial Espionage Targets Developers Source: Petar Kirhmajer via ReversingLabs Ray Framework Exposes Thousands of Companies to Cyberattacks Source: Avi Lumelsky, Guy Kaplan, Gay Elbay via Oligo Chinese APTs Intensify ASEAN Cyber Espionage Source: Unit 42 By Palo Alto Networks Germany Warns of 17K Mic...
Mar 27, 2024β’8 min
π What's the latest in the cyber world today? π¨ #CyberAlerts Top Python Developers Targeted in Supply Chain Hack Source : Tal Folkman, Yehuda Gelb, Jossef Harush Kadouri, Tzachi Zornshtain via CheckMarx Microsoft 365 and Gmail Accounts Targeted by New MFA-Phishing Kit Source : Quentin Bourgue via Sekoia blog CISA Urges Software Developers Eliminate SQL Injection Risks Source : CISA AMD Zen CPUs Affected by ZenHammer Attack Source : Comsec Critical OpenVPN Flaw Allows Privilege Escalation Sourc...
Mar 26, 2024β’9 min
π What's happening in cybersecurity today? π¨ #CyberAlerts New 'GoFetch' Apple M-Series Chip Vulnerability Leaks Encryption Keys Source : Georgia Institute of Technology Mozilla Resolves Firefox Zero-Days from Pwn2Own 2024 Source : Manfred Paul via Trend Micro's Zero Day Initiative Russian APT29 Hackers Target German Political Parties with Malware Campaigns Source : LUKE JENKINS, DAN BLACK via Mandiant New StrelaStealer Phishing Campaign Targets 100+ US and EU Organizations Source : Benjamin Ch...
Mar 25, 2024β’8 min
π What are the latest cybersecurity alerts, incidents, and news? π¨ #CyberAlerts Vulnerability Allowed AWS Apache Airflow Takeover Source : Tenable Rapid Surge of Web Infections by the Sign1 Malware Campaign Source : Ben Martin via Sucuri Blog Unsaflok Vulnerabilities Unlocks Millions of Hotel Doors Source : Lennert Wouters, Ian Carroll, rqu, BusesCanFly, Sam Curry, shell, and Will Caruana via Unsaflock.com Sysrv Botnet Exploits Google Subdomain to Spread XMRi Miner Source : Daniel Johnston, Yo...
Mar 22, 2024β’9 min
π What's going on in the cyber world today? π¨ #CyberAlerts AndroxGh0st Malware Targets Laravel Applications to Extract Critical Data Source : Kashinath T Pattan via Juniper Europe Experiences Surge of AceCryptor Malware Infections Source : Jakub KaloΔ via WeLiveSecurity Ivanti Urges Immediate Patch for Critical Flaw Source : Ivanti Smoke Loader Malware Targets Financial Institutions Source : Unit42 Palo Alto Networks Atlassian Addresses Critical Vulnerabilities in Product Suite Source : Atlass...
Mar 21, 2024β’9 min
π What's trending in cybersecurity today? π¨ #CyberAlerts U.S. Federal Trade Commission Warns Against Scammers Impersonating Employees Source : Jay Mayfield via FTC WordPress Automatic Plugin Vulnerabilities Expose 40k Sites Source : PatchStack Andariel Group Deploys MeshAgent in Korean Cyber Attacks Source : Sanseo via Ahnlab New 'Conversation Overflow' Email Attack Bypasses Machine Learning Security Source : STEPHEN KOWSKI via SlashNext New DoS Attack Threatens Thousands of Systems Source : E...
Mar 20, 2024β’9 min
π What's the latest in the cyber world today? π¨ #CyberAlerts New Phishing Attack Deploys NetSupport RAT via Clever Microsoft Office Trick Source : Ariel Davidpur via Perception Point Windows Users Targeted by Advanced DEEP#GOSU Malware Source : D. Iuzvyk, T. Peck, O. Kolesnikov via Securonix AcidPour Unleashes Threat Upon Linux x86 Devices Source : Juan Andres Guerrero-Saade via SentinelOne Three Critical Vulnerabilities Exposed Within Argo System Source : Nadav Aharon-Nov via Trust Research A...
Mar 19, 2024β’9 min
π What's happening in cybersecurity today? π¨ #CyberAlerts Hackers Exploit Aiohttp Bug for Vulnerable Networks Source : Cyble Hackers Spread RisePro Info Stealer via Cracked GitHub Software Source : GData Software WordPress Admins Urges Removal of miniOrange Plugins Source : Wordfence Keyboard Acoustic Attack Deciphers Typing Patterns Source : Arxiv Deceptive Android Chrome Update Unleashes Cerberus Threat Source : Broadcom π₯ #CyberIncidents The International Monetary Fund Email Accounts Hacke...
Mar 18, 2024β’8 min
π What are the latest cybersecurity alerts, incidents, and news? π¨ #CyberAlerts StopCrypt Ransomware New Variant Evades Detection Source : SonicWall Deceptive Ads Prey on Chinese Notepad++ and VNote Users Source : Securelist Experts Say Chinese Safes Risk US National Security Source : US Senate Kubernetes Vulnerability Enables Windows Node Takeover Source : Akamai CISA Issues 15 Industrial Control Systems Security Advisories Source : CISA π₯ #CyberIncidents McDonald's Faces Global Ordering Iss...
Mar 15, 2024β’8 min
π What's trending in cybersecurity today? π¨ #CyberAlerts ChatGPT Plugin Vulnerabilities Expose Data and Accounts Source : Salt Labs Research FakeBat Malware Delivered Through Active Malvertising Source : JΓ©rΓ΄me Segura from MalwareBytes PixPirate Android Banking Trojan Evades Detection Source : Security Intelligence Critical Flaw in FortiClientEMS Source : FortiGuard Google Gemini LLM Vulnerabilities Source : HiddenLawyer π₯ #CyberIncidents Boat Seller MarineMax Cyberattack Disrupts Operations ...
Mar 14, 2024β’8 min
π What's trending in cybersecurity today? π¨ #CyberAlerts Phishing Campaign Deploys Java RATs via AWS and GitHub Source : Yurren Wan via Fortinet Muddled Libra Hackers Exploit Pentesting Tools for Admin Access Source : Kristopher Russo, Austin Dever and Amer Elsad via Unit42 Palo Alto Networks Malicious PyPI Packages Target Crypto Wallets in BIPClip Campaign Source : Karlo Zanki via Reversing Labs Microsoft March 2024 Patch Fixes 60 Flaws, 18 RCE Bugs Source : Microsoft CISA Alert on Schneider ...
Mar 13, 2024β’8 min
π What's happening in cybersecurity today? π¨ #CyberAlerts Fake Leather Wallet App on Apple Store Drains Cryptocurrency Source : Darktrace MSIX Malware Embedded within Deceptive Notion Installer Poses Threat to User Data Source : Ahnlab Italian Police Alert on Insurance Scams via QR Codes Source : Ivass Proof-of-Concept Exploit Released for Progress OpenEdge Vulnerability Source : HackerNews JetBrains TeamCity Flaw Exploited by BianLian in Ransomware Attacks Source : GuidePoint Security π₯ #Cyb...
Mar 12, 2024β’9 min
π What's happening in cybersecurity today? π¨ #CyberAlerts Dropbox Used to Steal Credentials and Bypass MFA in Novel Phishing Campaign Source : Darktrace WordPress Popup Builder Vulnerability Exploited Source : Puja Srivastava via Sucuri Security GovQA Vulnerabilities Pose Risk to Public Records Source : David Dimolfetta via Nextgov/FCW Magnet Goblin Group Leveraging 1-Day Exploits for Nerbian RAT Deployment Source : Checkpoint QNAP Issues Alert Regarding Critical Authentication Bypass Flaw in ...
Mar 11, 2024β’8 min
π What are the latest cybersecurity alerts, incidents, and news? π¨ #CyberAlerts Cisco Releases Critica Updates to Patch High-Severity VPN Vulnerability Source : Cisco Man-in-The-Middle Phishing Attack Unlocks Tesla for Theft. Source : Mysk via X (former Twitter) Chinese State Hackers Target Tibetans in Cyber Campaign Source : Anh Ho, Facundo MuΓ±oz, Marc-Etienne M. LΓ©veillΓ© via We Live Security AnyCubic Fixes 3D Printer Zero Day with New Firmware Source : AnyCubic QEMU Emulator Used by Threat A...
Mar 08, 2024β’9 min
π What's going on in the cyber world today? π¨ #CyberAlerts Hackers Impersonate U.S. Government Agencies in BEC Attacks Source : Selena Larson, Jake G and Dusty Miller via Proofpoint Facebook Users Targeted by Snake Python Information Stealer Source : Cybereason Moldova Alerts on Russian Hybrid Attacks Ahead of Upcoming Elections Source : Mihaela Conovali via NewsMaker Spinning YARN Targets Cloud Servers with Cryptocurrency Mining Source : Cado Security WordPress Sites Exploited to Force Browse...
Mar 07, 2024β’11 min
π What's trending in cybersecurity today? π¨ #CyberAlerts Apple Releases Urgent iOS Fixes to Combat Zero-Day Threats Source : Apple GhostSec and Stormous Launch Ransomware Assaults in 15+ Countries Source : Chetan Raghuprasad via Cisco Talos Android and Windows RATs Spread Through Fake Online Meetings Source : Zscaler VMware Issues Urgent Patches to Address ESXi Sandbox Escape Vulnerabilities Source : VMware New WogRAT Malware Utilizes Online Notepad Platform for Malware Storage Source : Ahnlab...
Mar 06, 2024β’11 min
π What's the latest in the cyber world today? π¨ #CyberAlerts New Security Risks Exposed in JetBrains TeamCity On-Premises Source : Daniel Gallo via JetBrains Kimsuky Exploits ScreenConnect to Deliver New ToddleShark Malware Source : Vulnera CHAVECLOAK Trojan Targets Brazilians via Malicious PDFs Source : Cara Lin via Fortinet TA577 Hacking Group Phish to Steal Windows NTLM Hashes Source : TOMMY MADJAR, KELSEY MERRIMAN, SELENA LARSON via PROOFPOINT Researchers Develop Stealthy Web-based PLC Mal...
Mar 05, 2024β’10 min
π What's happening in cybersecurity today? π¨ #CyberAlerts Mac Malware Spread Through Calendar Meeting Links Source : Brian Krebs on Security Security Flaws Exposed Smart Doorbell Cameras Source : Stacey Higginbotham, Daniel Wroclawski via Consumer Reports Phishing Kit Targets Cryptocurrency Users with SMS, Voice Calls Source : Lookout Bogus WordPress Plugins Carry SocGholish Malware Source : Ben Martin via Sucuri Blog Microsoft Edge Update Pulled Over Memory Errors Source : Microsoft π₯ #Cyber...
Mar 04, 2024β’10 min
π What are the latest cybersecurity alerts, incidents, and news? π¨ #CyberAlerts Meta Patches Critical Facebook Account Vulnerability Source : Samip Aryal via InfoSec Write-ups Airbnb Scam Redirects Users to Fake Tripadvisor Website Source : Pieter Arntz via Malwarebytes Labs CISA, FBI, MS-ISAC Issue Phobos Ransomware Advisory Source : CISA Linux Bifrost Malware Mimics VMware Domain for Evasion Source : Anmol Maurya and Siddharth Sharma via Unit42 Palo Alto Networks New Silver SAML Attack Evade...
Mar 01, 2024β’10 min
π What's going on in the cyber world today? π¨ #CyberAlerts Lazarus Uses Typos for PyPI Malware Infiltration of Dev Systems Source : JPCRET/CC China-Linked Clusters Exploit Ivanti VPN Vulnerabilities Source : MATT LIN, ROBERT WALLACE, AUSTIN LARSEN, RYAN GANDRUD, JACOB THOMPSON, ASHLEY PEARSON, ASHLEY FRAZER via Mandiant Iranian Threat Actor UNC1549 Targets Middle East Aerospace Sector Source : OFIR ROZMANN, CHEN EVGI, JONATHAN LEATHERY via Mandiant Lazarus Group Exploits Windows AppLocker Driv...
Feb 29, 2024β’10 min
π What's trending in cybersecurity today? π¨ #CyberAlerts FBI, CISA, HHS Alert on BlackCat Ransomware Targeting US Hospitals Source : CISA Russian Hackers Exploit Ubiquiti Routers for Stealth Attacks Source : IC3 TimbreStealer Malware Targets Mexicans via Tax-Themed Phishing Scam Source : Guilherme Venere, Jacob Finn, Tucker Favreau, Jacob Stanfill, James Nutland via Cisco Talos Intelligence New Atomic Stealer Variant Targets Safari Cookies and Crypto Wallets Source : Andrei Lapusneanu via Bitd...
Feb 28, 2024β’10 min
π What's the latest in the cyber world today? π¨ #CyberAlerts White House Urges Devs to Adopt Memory-Safe Languages Source : The White House 8,000+ Trusted Brands Domains Hijacked in Spam Operation Source : Nati Tal and Oleg Zaytsev via Guardio Labs Travelers Targeted by Booking.com Email Scam Distributing Agent Tesla Source : Mayur Sewani and Prashant Kumar via Forcepoint Critical SQLi Flaw in Popular WordPress Plugin Threatens 200K+ Websites Source : Istvan Marton via Wordfence New IDAT Loade...
Feb 27, 2024β’10 min
π What's happening in cybersecurity today? π¨ #CyberAlerts Apple Shortcuts Vulnerability Exposes Sensitive Data Source : Bitdefender DoppelgΓ€nger's Global Disinformation Campaign Unveiled Source : ALEKSANDAR MILENKOSKI via Sentinel One CISA, NCSC-UK, and Partners Warn Against SVR Cyber Threats in Cloud Source : CISA 8220 Gang Expands Cryptomining Assault on Cloud Infrastructure Source : Tejaswini Sandapolla and Shilpesh Trivedi via Uptycs Dormant PyPI Package Spreads Nova Sentinel Malware Sourc...
Feb 26, 2024β’10 min
π What are the latest cybersecurity alerts, incidents, and news? π¨ #CyberAlerts Lucifer Botnet's New Variant Targets Apache Servers Vulnerabilities Source : Nitzan Yaakov via Aqua Security Oil and Gas Industry Targeted by Advanced Phishing Campaign Source : Dylan Duncan via Cofense Email Security Rising Threat of Web3 Malware Attacks on Cryptocurrency Assets Source : DENIS SINEGUBKO via Sucuri Blog Researcher Exposes New Nigerian 'Beyond the Border' Scam Source : Salvatore Lombardo via Compute...
Feb 23, 2024β’10 min
π What's going on in the cyber world today? π¨ #CyberAlerts Google Cloud Run Abused for Banking Trojan Distribution Source : Cisco Talos Intelligence Wi-Fi Authentication Flaws Endanger Android and Linux Source : Simon Migliano and Mathy Vanhoef via Top10vpn SSH-Snake Malware Targets SSH Credentials for Lateral Movement Source : Miguel Hernandez via sysdig Mustang Panda Strikes Asia Using Advanced PlugX Variant Source : Trend Micro Joomla Patches XSS Vulnerabilities for RCE Prevention Source : ...
Feb 22, 2024β’10 min
π What's trending in cybersecurity today? π¨ #CyberAlerts Latest Migo Malware Targets Redis Servers for Cryptocurrency Mining Source : Cado Security VMware Urges Removal of Risky Authentication Plugin Source : VMware PyPI Malicious Packages Exploit DLLs for Supply Chain Attack Source : Reversing Labs VietCredCare Stealer Targets Facebook Advertisers in Vietnam Source : Group-IB VoltSchemer Attack Exploits Wireless Chargers for Voice Command Injection Source : Zihao Zhan , Yirui Yang , Haoqi Sha...
Feb 21, 2024β’10 min
π What's happening in cybersecurity today? π¨ #CyberAlerts Meta Alerts on 8 Spyware Firms Impacting iOS, Android, Windows Source : Meta Joint Advisory Warns of North Korea's Cyber Espionage Targeting Global Defense Sector Source : Bundesamt FΓΌr Verfassungsschutz Wordpress Bricks Builder Theme Faces Critical RCE Attack Source : Bricks Builder Exploitation of Critical Microsoft Exchange Flaw Endangers 97,000 Servers Source : Shadow Server ConnectWise Fixes Two ScreenConnect Vulnerabilities Source...
Feb 20, 2024β’10 min
π What's happening in cybersecurity today? π¨ #CyberAlerts SpyNote Android Spyware Exploits Accessibility APIs for Crypto Theft Source : Fortinet Charming Kitten's Return with New Backdoor Threat BASICSTAR Source : Volexity SolarWinds Remedies Critical Vulnerabilities in Access Rights Manager Source : Solarwinds Protect AI Reveals Open Source Supply Chain Vulnerabilities Source : ProtectAI Europe Faces New Threat from Anatsa Trojan Evading Google Play Source : Recorded Future π₯ #CyberIncidents...
Feb 19, 2024β’11 min
π What are the latest cybersecurity alerts, incidents, and news? π¨ #CyberAlerts RansomHouse Gang Automates ESXi Attacks with MrAgent Tool Source : Pham Duy Phuc and Max Kersten viaTrellix New Qakbot Variants Targets Windows Users with Fake Adobe Installers Source : SophosXOps Cloud Smishing Campaigns Fueled by AWS SNS Exploitation Source : Alex Delamotte via SentinelOne New TinyTurla-NG Backdoor Targets Polish NGOs Source : Asheer Malhotra, Holger Unterbrink, Vitor Ventura, Arnaud Zobec via Ci...
Feb 16, 2024β’9 min
